This year Popcorn Training was really excited to release their latest Cyber Security Awareness series Standups 4 Security. This series has a proudly South African flavour and features some of SA’s hottest comedic talent. We have 8 new episodes within this series that look at a variety of cybersecurity awareness topics from Phishing to Social Media, the Dark Web and CEO Scams. But one of the more ‘hard-hitting, closer to home topics’ is the episode titled: A Goliath Hack.
It is an episode based on true events. Goliath and Goliath fell victim to an ‘Invoiciang Scam’.
Change of account scams are very real. Here’s how it happens:
Your business is sent an invoice, often looking like one from a familiar supplier. However, the account details will have changed.
To make the scam more legit, you’ll probably receive a call from this supplier to confirm that you have received the change of account details.
How did the scammers even know you used this supplier?
Entry to your mail servers is granted to the criminals unknowingly by an employee who falls for a phishing scam. Weak passwords and user credentials can also be used as a gateway. Again stressing the importance of using strong passwords.
Weak passwords and user credentials can also be used as a gateway. Again stressing the importance of using strong passwords.
How to ensure that you do not fall victim to this scam:
• Beat the scammers to it! Let current and new clients know that your banking details will never change. If they receive any correspondence announcing a change in bank details, to contact you and verify you are banking details before they pay.
• You can also consider leaving your bank details off your invoices and give them the information over the phone instead.
• Teach employees about phishing and how to avoid phishing scams.
• Stress the importance of secure and strong passwords. Implement two-factor authentication when it comes to email access.